This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/k_YcWwmlCdRmg3QWCHjeu_3bQgc.roa File: k_YcWwmlCdRmg3QWCHjeu_3bQgc.roa (raw, json) Hash identifier: ndXNZth9fZdORWJAEHx4VO2dKxjjtc+eqA9R5lEpUIQ= Subject key identifier: 93:F6:1C:5B:09:A5:09:D4:66:83:74:16:08:78:DE:BB:FD:DB:42:07 Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071 Certificate serial: 019B215F42BB0D3A9F0A65DE56FDD001BC0E Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/k_YcWwmlCdRmg3QWCHjeu_3bQgc.roa Signing time: Mon 15 Dec 2025 09:37:29 +0000 ROA not before: Mon 15 Dec 2025 09:37:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38915 IP address blocks: 2a07:3500:1200::/48 maxlen: 48 2a07:3500:1201::/48 maxlen: 48 2a07:3500:1998::/48 maxlen: 48 2a07:3500:1999::/48 maxlen: 48 2a07:3500:19a0::/48 maxlen: 48 2a07:3500:19a8::/48 maxlen: 48 2a07:3500:19b0::/48 maxlen: 48 2a07:3500:19b1::/48 maxlen: 48 2a07:3500:19b8::/48 maxlen: 48 2a07:3500:19b9::/48 maxlen: 48 2a07:3500:19d8::/48 maxlen: 48 2a07:3500:19d9::/48 maxlen: 48 2a07:3500:19e0::/48 maxlen: 48 2a07:3500:19e1::/48 maxlen: 48 2a07:3500:19e8::/48 maxlen: 48 2a07:3500:19e9::/48 maxlen: 48 2a07:3500:19f0::/48 maxlen: 48 2a07:3500:19f1::/48 maxlen: 48 2a07:3500:19f8::/48 maxlen: 48 2a07:3500:19f9::/48 maxlen: 48 2a07:3500:1a00::/48 maxlen: 48 2a07:3500:1a01::/48 maxlen: 48 2a07:3502:1040::/48 maxlen: 48 2a07:3502:1041::/48 maxlen: 48 2a07:3502:1070::/48 maxlen: 48 2a07:3502:1071::/48 maxlen: 48 2a07:3502:1090::/48 maxlen: 48 2a07:3502:1091::/48 maxlen: 48 2a07:3502:11d0::/48 maxlen: 48 2a07:3502:11e0::/48 maxlen: 48 2a07:3502:11e1::/48 maxlen: 48 2a07:3502:11f0::/48 maxlen: 48 2a07:3502:11f1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.mft rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:5f:42:bb:0d:3a:9f:0a:65:de:56:fd:d0:01:bc:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071 Validity Not Before: Dec 15 09:37:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=93f61c5b09a509d4668374160878debbfddb4207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d8:c1:f3:6c:18:66:59:3f:52:7a:92:b6:ce: 4b:28:7a:90:08:cc:8d:a8:c9:75:51:02:f1:c9:45: 8a:00:8a:86:c9:e2:7f:ea:c7:95:07:fd:7a:2f:cf: 19:0f:53:81:9a:5c:38:85:2f:2e:13:ef:a0:37:10: 98:12:6c:ef:e2:71:c5:d7:3d:79:f5:f1:4e:90:88: ad:4c:16:e6:c5:e2:a6:59:51:c1:05:f4:97:df:4d: 8d:90:41:4d:68:4f:72:e6:28:69:6d:d4:0e:40:81: 2b:f0:a9:0e:0e:60:35:a6:c0:59:8e:d6:5a:c1:99: 67:aa:7f:a1:d5:5f:b0:8f:75:b4:78:a5:79:d5:b1: b0:83:01:61:78:ec:6a:24:0d:0e:ab:c5:53:e3:ee: b1:66:4b:0f:5c:a8:3d:a0:64:d1:0f:56:af:dc:79: 6a:ca:d9:a6:07:a2:da:20:6b:75:f1:6a:59:f3:fd: ca:ee:bd:c6:ab:60:f0:6b:f0:aa:1f:2e:35:22:7e: a8:49:7a:dc:fb:74:23:9c:bc:24:61:8f:f0:79:e6: df:51:50:3d:c9:b4:a7:68:d2:d2:f3:47:84:93:34: c1:03:99:0f:9c:e1:a3:a4:d8:b9:aa:74:02:fb:a6: f4:7d:6f:5e:85:97:86:03:a3:01:3f:8a:87:a7:fe: f8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F6:1C:5B:09:A5:09:D4:66:83:74:16:08:78:DE:BB:FD:DB:42:07 X509v3 Authority Key Identifier: keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/k_YcWwmlCdRmg3QWCHjeu_3bQgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:3500:1200::/47 2a07:3500:1998::/47 2a07:3500:19a0::/48 2a07:3500:19a8::/48 2a07:3500:19b0::/47 2a07:3500:19b8::/47 2a07:3500:19d8::/47 2a07:3500:19e0::/47 2a07:3500:19e8::/47 2a07:3500:19f0::/47 2a07:3500:19f8::/47 2a07:3500:1a00::/47 2a07:3502:1040::/47 2a07:3502:1070::/47 2a07:3502:1090::/47 2a07:3502:11d0::/48 2a07:3502:11e0::/47 2a07:3502:11f0::/47 Signature Algorithm: sha256WithRSAEncryption 08:b7:59:ec:ce:4f:57:88:2c:40:03:00:84:43:a3:ab:9e:4e: af:54:42:12:9c:05:f8:f2:af:bf:1d:bf:dc:e6:56:85:16:90: e0:c2:a6:30:02:4b:c0:2d:2d:87:d3:82:ce:df:d6:b2:bb:0e: 5a:ca:59:0f:cc:e8:51:b7:cd:70:16:28:d0:34:e3:f1:1f:ab: 36:b2:b0:55:b9:81:70:71:be:af:eb:58:da:38:40:65:d5:5f: a4:13:5a:76:41:d9:cd:f5:ec:82:50:3d:d5:c5:5f:35:40:30: c1:43:29:7d:67:a0:cc:22:6a:a3:03:72:d6:3c:f9:7f:9f:0b: bb:c9:ee:97:9d:ec:7e:0d:92:e9:88:af:b9:79:f7:b3:31:1b: dc:77:fd:5c:a3:13:bc:e3:e3:1e:ba:ed:d1:3f:18:19:4f:7b: 29:6d:79:f0:df:80:23:53:b2:8d:cc:32:af:3a:5a:6b:49:8e: 9a:e0:b7:2f:63:17:95:ed:0b:c3:b4:ef:d6:0a:39:b0:4f:95: ac:84:ca:be:52:bb:f4:6e:38:d5:f2:3e:4c:a7:e8:d2:8a:b4: b4:be:5c:ae:02:45:62:6c:fd:2b:40:5f:2e:44:c9:21:93:54: 3b:63:80:13:96:1d:b0:6d:9c:b9:a2:30:7a:9d:cb:1e:f6:24: 76:0b:37:bd -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgISAZshX0K7DTqfCmXeVv3QAbwOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl MTQwNzEwHhcNMjUxMjE1MDkzNzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5M2Y2MWM1YjA5YTUwOWQ0NjY4Mzc0MTYwODc4ZGViYmZkZGI0MjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tjB82wYZlk/UnqSts5LKHqQCMyN qMl1UQLxyUWKAIqGyeJ/6seVB/16L88ZD1OBmlw4hS8uE++gNxCYEmzv4nHF1z15 9fFOkIitTBbmxeKmWVHBBfSX302NkEFNaE9y5ihpbdQOQIEr8KkODmA1psBZjtZa wZlnqn+h1V+wj3W0eKV51bGwgwFheOxqJA0Oq8VT4+6xZksPXKg9oGTRD1av3Hlq ytmmB6LaIGt18WpZ8/3K7r3Gq2Dwa/CqHy41In6oSXrc+3QjnLwkYY/weebfUVA9 ybSnaNLS80eEkzTBA5kPnOGjpNi5qnQC+6b0fW9ehZeGA6MBP4qHp/74wQIDAQAB o4ICqjCCAqYwHQYDVR0OBBYEFJP2HFsJpQnUZoN0Fgh43rv920IHMB8GA1UdIwQY MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt YWQ1NzU1MjJiMzY1LzEva19ZY1d3bWxDZFJtZzNRV0NIamV1XzNiUWdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1 LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIG/BggrBgEFBQcBBwEB/wSBrzCBrDCBqQQCAAIwgaIDBwEq BzUAEgADBwEqBzUAGZgDBwAqBzUAGaADBwAqBzUAGagDBwEqBzUAGbADBwEqBzUA GbgDBwEqBzUAGdgDBwEqBzUAGeADBwEqBzUAGegDBwEqBzUAGfADBwEqBzUAGfgD BwEqBzUAGgADBwEqBzUCEEADBwEqBzUCEHADBwEqBzUCEJADBwAqBzUCEdADBwEq BzUCEeADBwEqBzUCEfAwDQYJKoZIhvcNAQELBQADggEBAAi3WezOT1eILEADAIRD o6ueTq9UQhKcBfjyr78dv9zmVoUWkODCpjACS8AtLYfTgs7f1rK7DlrKWQ/M6FG3 zXAWKNA04/EfqzaysFW5gXBxvq/rWNo4QGXVX6QTWnZB2c317IJQPdXFXzVAMMFD KX1noMwiaqMDctY8+X+fC7vJ7ped7H4NkumIr7l597MxG9x3/VyjE7zj4x667dE/ GBlPeyltefDfgCNTso3MMq86WmtJjprgty9jF5XtC8O079YKObBPlayEyr5Su/Ru ONXyPkyn6NKKtLS+XK4CRWJs/StAXy5EySGTVDtjgBOWHbBtnLmiMHqdyx72JHYL N70= -----END CERTIFICATE-----Generated at Sat Dec 20 01:10:35 2025 by rpki-client